I find myself spoiled by OS X. As I consider other computing options, I realized my access to secure files could be limited if I found myself on Windows/Linux.
While I think this is great for Mac users and Mac to Mac transfers, I wanted some cross-platform love.
It’s time to switch to VeraCrypt:
It can be difficult to choose Encryption Options if you are not familiar. So here’s some help:
- Encryption Algorithm: AES(TwoFish(Serpent))
- Hash Algorithm: Whirlpool
Why?: It’s not so much I believe these options are “most secure” as much as “least weak”.
If you’d like the technical details of such decisions:
VeraCrypt Wiki – Encryption Options: Cascades
VeraCrypt Wiki – Hash Algorithms
Volume Password Options:
Make sure you generate as long a password as possible: 64 characters
Linux Tip: pwgen -s 64 1
Leave PIM disabled (unless you want to use a short password, see Doc)
Use Keyfiles: Generate at least 3 of them.
Bonus: Disk Decipher can access your encrypted volumes on iOS!
If you wish to use a backup/sync utility (Dropbox, Google Drive, ownCloud, etc.)
Make sure you disable “Preserve modification timestamp of file containers” in VeraCrypt Settings!
- Open VeraCrypt
- Go to Settings > Preferences
- De-select Preserve modification timestamp of file containers
- Click OK
See this great CrashPlan article for more details; it’s written for TrueCrypt, but still applies to VeraCrypt today: